$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa File: ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa (raw, json) Hash identifier: sXgMsQbXsqBkAF3iZ97x3Q7f2cKacoUYdyOh1VXa8hQ= Subject key identifier: EA:F4:B5:0A:D2:4C:33:AA:43:E3:B0:BA:BD:FF:B9:C6:94:48:45:01 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 4E132599DE9E72B2B77091E512D4C849023CE631 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa Signing time: Fri 10 Oct 2025 16:29:20 +0000 ROA not before: Fri 10 Oct 2025 16:29:20 +0000 ROA not after: Fri 14 Nov 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.170.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 21 Oct 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:13:25:99:de:9e:72:b2:b7:70:91:e5:12:d4:c8:49:02:3c:e6:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Oct 10 16:29:20 2025 GMT Not After : Nov 14 23:59:59 2025 GMT Subject: serialNumber=121e8a2c0fee118eae07bb7d7a2ceab1ad769e28a9ae1da870f12634813c9ae9, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:06:ba:d9:51:37:38:85:08:79:81:ea:f6: 27:a4:3d:81:b9:5b:9d:6b:ce:43:f7:8c:62:d0:6f: 9d:eb:e3:40:4b:0c:87:ae:ee:f9:9b:a5:8b:49:5e: 29:6e:03:c0:6c:6b:ef:d1:c3:dd:1e:dc:9c:e4:89: 7d:9e:75:6e:f3:d3:df:60:1f:3a:b7:4e:51:6a:36: ac:a9:2b:2d:0c:5d:f5:d9:c1:e6:25:06:cb:02:b7: c0:b0:bc:a0:74:8d:14:5f:ee:51:ff:71:ca:a8:ff: 92:b5:00:87:0e:68:99:a4:9f:f8:8e:be:cf:59:5c: e1:e8:d5:e8:3c:3c:bf:24:ee:51:f2:af:3b:a1:67: 3b:23:29:cd:04:95:57:fd:67:39:02:43:09:fe:e1: d4:63:dd:a1:55:79:90:80:b4:9c:7c:0e:7c:71:0c: 62:ab:3b:c1:e4:7a:ba:ad:0b:e7:d9:d0:89:4d:65: 05:4e:56:88:ad:77:ac:67:a9:73:4e:0c:51:0d:a5: fc:52:cb:fb:9b:0b:dd:c9:e0:d5:79:da:77:9d:23: 94:76:e2:5b:69:18:94:c7:7d:79:df:56:cb:32:5d: 34:c4:f4:7d:fb:d8:ba:c6:2c:94:d4:cf:3a:60:e9: 19:9a:77:ff:44:c9:e4:33:1c:ed:b0:86:7c:e9:3c: ac:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F4:B5:0A:D2:4C:33:AA:43:E3:B0:BA:BD:FF:B9:C6:94:48:45:01 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/ce4a44e4-0182-4d58-ab2b-2a1d1d18c02e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.170.0.0/15 Signature Algorithm: sha256WithRSAEncryption 13:8f:c5:6b:05:d7:d5:6d:18:19:2b:4d:67:11:c5:cb:17:1f: 45:15:3f:9f:81:a7:2a:92:c6:78:85:bc:a0:ae:74:1c:d2:ad: e8:fb:1e:b6:fc:94:79:a1:e2:58:4b:0b:2c:4b:b3:7d:4f:c0: 40:06:2d:51:9a:c0:5d:52:65:b2:74:14:ad:e6:d3:3d:61:a4: 44:b8:6c:63:2a:a0:d5:d4:c1:8d:b7:13:55:8a:eb:56:ed:d8: b1:21:9d:f5:e4:ef:bf:c8:71:87:2c:76:a6:49:05:35:c8:a3: ea:c0:d4:60:b3:da:7b:eb:09:ce:84:e6:12:73:84:be:2a:e2: 34:f9:ec:a6:d6:bd:bb:6c:38:1c:c0:ae:2e:fb:bb:ed:1d:c1: fb:51:22:c7:19:a9:ab:3e:d3:d7:28:42:9e:0c:62:45:38:2e: 4c:00:dd:e7:b7:05:58:04:d2:55:6c:9d:36:64:03:ac:b4:1e: df:8a:56:82:a6:ff:d7:52:65:7c:8f:88:1e:34:e7:fd:82:8b: 1f:fa:2d:94:01:f2:16:1e:4f:31:2b:6e:65:50:9b:5e:52:da: 9b:33:c8:d5:b2:db:8f:fb:60:bd:0d:42:69:67:1e:dd:ae:c8: c8:a5:17:18:a3:9b:28:00:d6:cf:fa:c1:42:17:8b:fa:eb:6e: 4a:fc:48:80 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUThMlmd6ecrK3cJHlEtTISQI85jEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUxMDEwMTYyOTIwWhcNMjUxMTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjFlOGEyYzBmZWUxMThlYWUwN2JiN2Q3YTJjZWFiMWFk NzY5ZTI4YTlhZTFkYTg3MGYxMjYzNDgxM2M5YWU5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNmga62VE3OIUIeYHq9iekPYG5W51rzkP3jGLQb53r40BL DIeu7vmbpYtJXiluA8Bsa+/Rw90e3JzkiX2edW7z099gHzq3TlFqNqypKy0MXfXZ weYlBssCt8CwvKB0jRRf7lH/ccqo/5K1AIcOaJmkn/iOvs9ZXOHo1eg8PL8k7lHy rzuhZzsjKc0ElVf9ZzkCQwn+4dRj3aFVeZCAtJx8DnxxDGKrO8HkerqtC+fZ0IlN ZQVOVoitd6xnqXNODFENpfxSy/ubC93J4NV52nedI5R24ltpGJTHfXnfVssyXTTE 9H372LrGLJTUzzpg6Rmad/9EyeQzHO2whnzpPKwnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6vS1CtJMM6pD47C6vf+5xpRIRQEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NlNGE0NGU0LTAxODItNGQ1OC1hYjJiLTJhMWQxZDE4YzAyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2qjANBgkqhkiG9w0BAQsFAAOCAQEAE4/FawXX1W0YGStNZxHFyxcfRRU/ n4GnKpLGeIW8oK50HNKt6PsetvyUeaHiWEsLLEuzfU/AQAYtUZrAXVJlsnQUrebT PWGkRLhsYyqg1dTBjbcTVYrrVu3YsSGd9eTvv8hxhyx2pkkFNcij6sDUYLPae+sJ zoTmEnOEviriNPnspta9u2w4HMCuLvu77R3B+1Eixxmpqz7T1yhCngxiRTguTADd 57cFWATSVWydNmQDrLQe34pWgqb/11JlfI+IHjTn/YKLH/otlAHyFh5PMStuZVCb XlLamzPI1bLbj/tgvQ1CaWce3a7IyKUXGKObKADWz/rBQheL+utuSvxIgA== -----END CERTIFICATE-----Generated at Mon Oct 20 03:04:51 2025 by rpki-client